Strictor.191531 (B) removal tips

The Strictor.191531 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Strictor.191531 (B) virus can do?

Yara rule detections observed from a process memory dump/dropped files/CAPE
Authenticode signature is invalid

How to determine Strictor.191531 (B)?


File Info:
name: 5DC0D71D4A0A7389E9D7.mlw
path: /opt/CAPEv2/storage/binaries/d278f23aacd416f15a10d32a6e24b9530a98367895bc20257f12edaceaf6d740
crc32: 462115DB
md5: 5dc0d71d4a0a7389e9d7b0ac22b81722
sha1: 7068eb5285db3d478666f2b3b0e52a1d9cbfcdff
sha256: d278f23aacd416f15a10d32a6e24b9530a98367895bc20257f12edaceaf6d740
sha512: d814f8d29b5dc0518672ee8c3df32bbfba0c692c9585d03b93520b5c48609ca186793a65b2269b7a60f3f99daa34b697f29611b5415fb794e0750d89be9bb899
ssdeep: 24576:UAHnh+eWsN3skA4RV1Hom2KXMmHa1CL5:jh+ZkldoPK8Ya16
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T192058B0273D2C036FFAB92739B6AB20596BD79250133852F13981DB9BD701B1277E663
sha3_384: f38684bc9a56190bacb70f2098bf248bc6251c2a4adc6786ecab1c622424ac1bbb36c93718dd4f1d1ae68755b75b4a60
ep_bytes: e8c8d00000e97ffeffffcccccccccccc
timestamp: 2022-03-03 12:10:26

Version Info:
Comments: gulBqBRPCqK
CompanyName: SokJTwFuZJcMewjJKycLQDqrHmG
FileDescription: Ctcl
FileVersion: 54.21.66.91
InternalName: EuoZR
LegalCopyright: DtmHNluZeWV
LegalTrademarks: cjblBed
ProductName: drVeOkSd
ProductVersion: 59.90.39.18
Translation: 0x0809 0x04b0

Strictor.191531 (B) also known as:

Bkav	W32.AIDetect.malware2
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Strictor.191531
FireEye	Gen:Variant.Strictor.191531
McAfee	W32/Autorun.worm.aakf
VIPRE	Gen:Variant.Strictor.191531
Sangfor	Virus.Win32.Save.a
CrowdStrike	win/malicious_confidence_90% (W)
K7GW	Trojan ( 0056a9891 )
K7AntiVirus	Trojan ( 0056a9891 )
Cyren	W32/AutoIt.SR.gen!Eldorado
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Win32/Autoit.OHY
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	UDS:Trojan.Script.Generic
BitDefender	Gen:Variant.Strictor.191531
NANO-Antivirus	Trojan.Script.Runner.jpzfug
Avast	AutoIt:Runner-BH [Trj]
Ad-Aware	Gen:Variant.Strictor.191531
Sophos	Mal/Generic-S
Comodo	Malware@#3b6mnhyewy6lu
F-Secure	Worm.WORM/FakeExt.Gen8
TrendMicro	TROJ_GEN.R003C0DJD22
McAfee-GW-Edition	BehavesLike.Win32.TrojanAitInject.ch
Emsisoft	Gen:Variant.Strictor.191531 (B)
Ikarus	Trojan.Win32.Autoit
Avira	WORM/FakeExt.Gen8
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	Trojan.Strictor.D2EC2B
ZoneAlarm	HEUR:Trojan.Script.Generic
GData	Gen:Variant.Strictor.191531
Google	Detected
AhnLab-V3	Malware/Win32.Generic.C3235476
ALYac	Gen:Variant.Strictor.191531
MAX	malware (ai score=84)
Malwarebytes	Malware.AI.1228030081
TrendMicro-HouseCall	TROJ_GEN.R003C0DJD22
Rising	Trojan.Runner/Autoit!1.C11B (CLASSIC)
Fortinet	W32/Autoit.OHL!tr
AVG	AutoIt:Runner-BH [Trj]
Cybereason	malicious.d4a0a7
Panda	Trj/CI.A

How to remove Strictor.191531 (B)?

Strictor.191531 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X